Red Teaming Experiments
Red Teaming Experiments
linkedin
github
@spotheplanet
patreon
What is ired.team?
Pinned
Pentesting Cheatsheets
Active Directory & Kerberos Abuse
offensive security
Red Team Infrastructure
Initial Access
Code Execution
regsvr32
MSHTA
Control Panel Item
Executing Code as a Control Panel Item through an Exported Cplapplet Function
Code Execution through Control Panel Add-ins
CMSTP
InstallUtil
Using MSBuild to Execute Shellcode in C#
Forfiles Indirect Command Execution
Application Whitelisting Bypass with WMIC and XSL
Powershell Without Powershell.exe
Powershell Constrained Language Mode ByPass
Forcing Iexplore.exe to Load a Malicious DLL via COM Abuse
pubprn.vbs Signed Script Code Execution
Code & Process Injection
Defense Evasion
Enumeration and Discovery
Privilege Escalation
Credential Access & Dumping
Lateral Movement
Persistence
Exfiltration
reversing, forensics & misc
Internals
Cloud
Neo4j
Dump Virtual Box Memory
AES Encryption Using Crypto++ .lib in Visual Studio C++
Reversing Password Checking Routine
Powered by GitBook

Code Execution

Here are the articles in this section:
regsvr32
regsvr32 (squiblydoo) code execution - bypass application whitelisting.
MSHTA
MSHTA code execution - bypass application whitelisting.
Control Panel Item
Control Panel Item code execution - bypass application whitelisting.
Executing Code as a Control Panel Item through an Exported Cplapplet Function
Code Execution through Control Panel Add-ins
CMSTP
CMSTP code execution - bypass application whitelisting.
InstallUtil
InstallUtil code execution - bypass application whitelisting.
Using MSBuild to Execute Shellcode in C#
Forfiles Indirect Command Execution
Defense Evasion
Application Whitelisting Bypass with WMIC and XSL
Powershell Without Powershell.exe
Powershell Constrained Language Mode ByPass
Understanding ConstrainedLanguageMode
Forcing Iexplore.exe to Load a Malicious DLL via COM Abuse
pubprn.vbs Signed Script Code Execution
Signed Script Proxy Execution - bypass application whitelisting using pubprn.vbs
Previous
NetNTLMv2 hash stealing using Outlook
Next
regsvr32
Last updated 2 years ago